Skip to content

epomatti/aws-macie-dlp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
img
img
 
 
.gitignore
.gitignore
 
 
.terraform.lock.hcl
.terraform.lock.hcl
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
output.tf
output.tf
 
 
secrets.txt
secrets.txt
 
 
variables.tf
variables.tf
 
 

Repository files navigation

AWS Macie

Create the infrastructure:

terraform init
terraform apply -auto-approve

A file with vulnerabilities will be automatically uploaded to S3:

Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==

Credit Card Number: 5555555555554444
Type: Mastercard
CVC: 761

Terraform will attempt to enable Macie. If you already have it enabled, comment the resource aws_macie2_account declaration from the code.

Create a Macie job. Replace the accountId and buckets values accordingly.

aws macie2 create-classification-job \
  --job-type "ONE_TIME" \
  --name "job1" \
  --s3-job-definition '{"bucketDefinitions":[{"accountId":"000000000000", "buckets":["<bucket-name>"]}]}'

Review the results on the console.

Security Hub

Macie will automatically publish findings to Security Hub.

In Macie, you can edit the options this in the Console to publish sensitive data findings as well.

On Security Hub, create Insight: 10. S3 buckets with sensitive data.

About

AWS Macie job for DLP

Topics

aws security terraform s3 aws-security dlp aws-macie

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages